42.228.45.144 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.228.45.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62097
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.228.45.144.			IN	A

;; AUTHORITY SECTION:
.			145	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:43:39 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

144.45.228.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
144.45.228.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
89.187.222.141	attack	Email rejected due to spam filtering	2020-02-28 04:55:09
51.159.35.140	attackbots	3478/udp 123/udp 389/udp... [2020-02-11/27]32pkt,3pt.(udp)	2020-02-28 05:27:07
46.101.19.133	attackbotsspam	Feb 27 21:45:33 silence02 sshd[9274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.19.133 Feb 27 21:45:35 silence02 sshd[9274]: Failed password for invalid user christian from 46.101.19.133 port 38119 ssh2 Feb 27 21:55:18 silence02 sshd[9894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.19.133	2020-02-28 04:59:43
103.103.215.168	attack	firewall-block, port(s): 80/tcp	2020-02-28 05:25:10
189.252.38.211	attack	1582813239 - 02/27/2020 15:20:39 Host: 189.252.38.211/189.252.38.211 Port: 445 TCP Blocked	2020-02-28 04:51:54
92.124.215.94	attack	Feb 27 15:17:16 clarabelen sshd[3879]: Address 92.124.215.94 maps to 92.124.215.94.stbur.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 27 15:17:16 clarabelen sshd[3879]: Invalid user admin from 92.124.215.94 Feb 27 15:17:16 clarabelen sshd[3879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.124.215.94 Feb 27 15:17:18 clarabelen sshd[3879]: Failed password for invalid user admin from 92.124.215.94 port 59780 ssh2 Feb 27 15:17:20 clarabelen sshd[3879]: Connection closed by 92.124.215.94 [preauth] Feb 27 15:17:22 clarabelen sshd[3904]: Address 92.124.215.94 maps to 92.124.215.94.stbur.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 27 15:17:22 clarabelen sshd[3904]: Invalid user admin from 92.124.215.94 Feb 27 15:17:22 clarabelen sshd[3904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.124.215.94 ........ ----------------------------------------------- ht	2020-02-28 04:50:52
122.224.34.193	attackbots	[portscan] Port scan	2020-02-28 04:52:08
122.165.185.99	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 05:00:47
192.241.221.239	attackspam	Web application attack detected by fail2ban	2020-02-28 05:19:22
141.8.132.24	attack	[Thu Feb 27 21:20:09.236135 2020] [:error] [pid 3621:tid 139837702010624] [client 141.8.132.24:65499] [client 141.8.132.24] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XlfQGXgSyCP9O11ZuEgQHgAAAUw"] ...	2020-02-28 05:18:43
171.101.210.246	attack	Port probing on unauthorized port 9530	2020-02-28 05:30:02
212.237.120.67	attack	Email rejected due to spam filtering	2020-02-28 04:54:00
36.110.218.194	attackspambots	Unauthorised access (Feb 27) SRC=36.110.218.194 LEN=40 TTL=244 ID=40984 TCP DPT=1433 WINDOW=1024 SYN	2020-02-28 05:00:30
104.244.76.133	attackbots	Port 123 (NTP) access denied	2020-02-28 05:22:44
220.248.30.58	attackspam	2020-02-27T15:46:03.622611vps751288.ovh.net sshd\[17879\]: Invalid user user02 from 220.248.30.58 port 17344 2020-02-27T15:46:03.629612vps751288.ovh.net sshd\[17879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.30.58 2020-02-27T15:46:05.223795vps751288.ovh.net sshd\[17879\]: Failed password for invalid user user02 from 220.248.30.58 port 17344 ssh2 2020-02-27T15:47:23.475882vps751288.ovh.net sshd\[17887\]: Invalid user garden from 220.248.30.58 port 21816 2020-02-27T15:47:23.483715vps751288.ovh.net sshd\[17887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.30.58	2020-02-28 05:04:48

最近上报的IP列表

42.228.44.20	42.228.67.187	42.228.68.117	42.228.38.118
42.228.73.66	42.229.104.235	42.228.72.69	42.229.156.169
42.229.218.232	42.229.156.104	42.229.249.132	42.229.251.16
42.229.250.64	42.229.221.225	42.230.107.11	42.229.252.133
42.230.112.28	42.230.100.231	42.229.254.85	42.230.103.144